[libvirt] [PATCH] security: Add swtpm paths to the domain's AppArmor profile
Stefan Berger
stefanb at linux.vnet.ibm.com
Thu Jun 28 11:07:49 UTC 2018
On 06/28/2018 03:55 AM, Michal Prívozník wrote:
> On 06/19/2018 03:52 PM, Stefan Berger wrote:
>> This patch extends the AppArmor domain profile with file paths
>> the swtpm accesses for state, log, pid, and socket files.
>>
>> Both, QEMU and swtpm, use this AppArmor profile.
>>
>> Signed-off-by: Stefan Berger <stefanb at linux.vnet.ibm.com>
>> Cc: Christian Ehrhardt <christian.ehrhardt at canonical.com>
>> ---
>> examples/apparmor/libvirt-qemu | 5 +++++
>> src/security/virt-aa-helper.c | 45 ++++++++++++++++++++++++++++++++++++++++++
>> 2 files changed, 50 insertions(+)
> ACK and safe for freeze.
I pushed this now. Thanks.
>
> Michal
>
More information about the libvir-list
mailing list